Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
h d moore vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-1744
Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote malicious users to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot d...
Microsoft Internet Information Services 5.0
1 EDB exploit
NA
CVE-2006-5882
Stack-based buffer overflow in the Broadcom BCMWL5.SYS wireless device driver 3.50.21.10, as used in Cisco Linksys WPC300N Wireless-N Notebook Adapter prior to 4.100.15.5 and other products, allows remote malicious users to execute arbitrary code via an 802.11 response frame cont...
Linksys Wpc300n Wireless-n Notebook Adapter Driver
Broadcom Bcmwl5.sys Wireless Device Driver 3.50.21.10
1 EDB exploit
NA
CVE-2009-2514
win32k.sys in the kernel in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not correctly parse font code during construction of a directory-entry table, which allows remote malicious users to execute arbitrary code via a crafted Embedded OpenType (EOT) font,...
Microsoft Windows Server 2008
Microsoft Windows 2003 Server
Microsoft Windows Xp
Microsoft Windows Server 2008 -
Microsoft Windows Xp -
Microsoft Windows Vista
Microsoft Windows 2000
1 EDB exploit
NA
CVE-2001-0800
lpsched in IRIX 6.5.13f and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters.
Sgi Irix
1 EDB exploit
NA
CVE-2005-3277
The LPD service in HP-UX 10.20 11.11 (11i) and previous versions allows remote malicious users to execute arbitrary code via shell metacharacters ("`" or single backquote) in a request that is not properly handled when an error occurs, as demonstrated by killing the con...
Hp Hp-ux 10.20
Hp Hp-ux 11.00
Hp Hp-ux 11.11
1 EDB exploit
NA
CVE-2005-2265
Firefox prior to 1.0.5, Mozilla prior to 1.7.9, and Netscape 8.0.2 and 7.2 allows remote malicious users to cause a denial of service (access violation and crash), and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string.
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Firefox 0.9
Mozilla Mozilla 1.4
Mozilla Mozilla 1.4.1
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.7
Mozilla Mozilla 1.7.8
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.2
Mozilla Firefox 1.0.3
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.5
Mozilla Mozilla 1.7.1
Mozilla Mozilla 1.7.2
Mozilla Mozilla 1.7
Mozilla Firefox 0.10
Mozilla Firefox 1.0
Mozilla Firefox 1.0.1
Mozilla Firefox 0.9.1
Mozilla Firefox 1.0.4
2 EDB exploits
NA
CVE-2006-0395
The Download Validation in Mail in Mac OS X 10.4 does not properly recognize attachment file types to warn a user of an unsafe type, which allows user-assisted remote malicious users to execute arbitrary code via crafted file types.
Apple Mac Os X 10.4.5
Apple Mac Os X Server 10.4.5
2 EDB exploits
NA
CVE-2003-0714
The Internet Mail Service in Exchange Server 5.5 and Exchange 2000 allows remote malicious users to cause a denial of service (memory exhaustion) by directly connecting to the SMTP service and sending a certain extended verb request, possibly triggering a buffer overflow in Excha...
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
2 EDB exploits
NA
CVE-2002-1473
Multiple buffer overflows in lp subsystem for HP-UX 10.20 up to and including 11.11 (11i) allow local users to cause a denial of service and possibly execute arbitrary code.
Hp Hp-ux 10.20
Hp Hp-ux 11.00
Hp Hp-ux 11.11
2 EDB exploits
NA
CVE-2005-3757
The Saxon XSLT parser in Google Mini Search Appliance, and possibly Google Search Appliance, allows remote malicious users to obtain sensitive information and execute arbitrary code via dangerous Java class methods in select attribute of xsl:value-of tags in XSLT style sheets, su...
Google Mini Search Appliance
Google Search Appliance
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »